// By year
Best cybersecurity books from 2017
5 cybersecurity books published in 2017, ranked by rating. Each entry is an opinionated review with who the book is for.
01 · 2017
Attacking Network Protocols
A Hacker's Guide to Capture, Analysis, and Exploitation
James Forshaw, Project Zero veteran, on how to capture, parse, and break protocols from the wire up to the application layer, with a strong focus on building reusable analysis tooling.
Advanced5/5James Forshaw02 · 2017
Windows Internals, Part 1
System architecture, processes, threads, memory management, and more
The canonical Microsoft Press reference on Windows internals: how processes, threads, memory and system services are actually implemented in the modern Windows kernel. User-mode focus in this volume.
Advanced5/5Pavel Yosifovich, Alex Ionescu, Mark Russinovich, David Solomon03 · 2017
Network Security Through Data Analysis
From Data to Action
Michael Collins on building situational awareness from network telemetry: collection architecture, statistical baseline-setting, and the analytic patterns that turn raw flows into detection.
Intermediate4/5Michael Collins04 · 2017
Practical Packet Analysis
Using Wireshark to Solve Real-World Network Problems
Chris Sanders' working manual for Wireshark, geared at troubleshooting and incident response rather than abstract protocol theory. Updated for Wireshark 2.x.
Beginner4/5Chris Sanders05 · 2017
Zero Trust Networks
Building Secure Systems in Untrusted Networks
Evan Gilman and Doug Barth's pre-marketing-bubble treatment of zero-trust architecture — what it is when you actually implement it (trust evaluation, device identity, dynamic policy) versus what the vendor pitch turned it into.
Intermediate4/5Evan Gilman, Doug Barth